CVE-2011-4088
published 2020-01-31CVE-2011-4088: ABRT might allow attackers to obtain sensitive information from crash reports.
PriorityP335high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EPSS
1.62%
73.0th percentile
ABRT might allow attackers to obtain sensitive information from crash reports.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| abrt | abrt | — | — |
| abrt_project | abrt | — | — |
| fedoraproject | fedora | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_workstation | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
abrt: may leak some personal information to bugzilla with some certain applications
vendor_redhat·2011-11-18·CVSS 7.5
CVE-2011-4088 [HIGH] abrt: may leak some personal information to bugzilla with some certain applications
abrt: may leak some personal information to bugzilla with some certain applications
ABRT might allow attackers to obtain sensitive information from crash reports.
No documentation needed
GHSA
GHSA-pvpf-wrvr-qvg2: ABRT might allow attackers to obtain sensitive information from crash reports
ghsa_unreviewed·2022-04-22
CVE-2011-4088 [MEDIUM] GHSA-pvpf-wrvr-qvg2: ABRT might allow attackers to obtain sensitive information from crash reports
ABRT might allow attackers to obtain sensitive information from crash reports.
No detection rules found.
No public exploits indexed.
2020-01-31
Published